IETF Logo Mail Archive

Crypto tokens in addresses

"Christian Huitema" <huitema@windows.microsoft.com> Fri, 28 November 2003 22:02 UTC

Received: from asgard.ietf.org (asgard.ietf.org [10.27.6.40]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id RAA12718 for <ietf-web-archive@odin.ietf.org>; Fri, 28 Nov 2003 17:02:06 -0500 (EST)
Received: from majordomo by asgard.ietf.org with local (Exim 4.14) id 1APqS8-0003d5-KA for ietf-list@asgard.ietf.org; Fri, 28 Nov 2003 16:47:04 -0500
Received: from ietf.org ([10.27.2.28]) by asgard.ietf.org with esmtp (Exim 4.14) id 1APqLy-0003ZK-4L for ietf@asgard.ietf.org; Fri, 28 Nov 2003 16:40:42 -0500
Received: from ietf-mx (ietf-mx.ietf.org [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA12151 for <ietf@ietf.org>; Fri, 28 Nov 2003 16:40:29 -0500 (EST)
Received: from ietf-mx ([132.151.6.1]) by ietf-mx with esmtp (Exim 4.12) id 1APqLw-0001sX-00 for ietf@ietf.org; Fri, 28 Nov 2003 16:40:40 -0500
Received: from mail4.microsoft.com ([131.107.3.122]) by ietf-mx with esmtp (Exim 4.12) id 1APqLw-0001rx-00 for ietf@ietf.org; Fri, 28 Nov 2003 16:40:40 -0500
Received: from inet-vrs-04.redmond.corp.microsoft.com ([157.54.8.149]) by mail4.microsoft.com with Microsoft SMTPSVC(6.0.3790.0); Fri, 28 Nov 2003 13:40:17 -0800
Received: from 157.54.8.23 by inet-vrs-04.redmond.corp.microsoft.com (InterScan E-Mail VirusWall NT); Fri, 28 Nov 2003 13:40:09 -0800
Received: from red-imc-01.redmond.corp.microsoft.com ([157.54.9.102]) by inet-hub-01.redmond.corp.microsoft.com with Microsoft SMTPSVC(6.0.3790.0); Fri, 28 Nov 2003 13:40:09 -0800
Received: from win-imc-01.wingroup.windeploy.ntdev.microsoft.com ([157.54.0.39]) by red-imc-01.redmond.corp.microsoft.com with Microsoft SMTPSVC(6.0.3790.1069); Fri, 28 Nov 2003 13:40:05 -0800
Received: from WIN-MSG-10.wingroup.windeploy.ntdev.microsoft.com ([157.54.12.81]) by win-imc-01.wingroup.windeploy.ntdev.microsoft.com with Microsoft SMTPSVC(6.0.3790.1069); Fri, 28 Nov 2003 13:40:09 -0800
X-MimeOLE: Produced By Microsoft Exchange V6.5.7122.0
Content-class: urn:content-classes:message
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Subject: Crypto tokens in addresses
Date: Fri, 28 Nov 2003 13:40:20 -0800
Message-ID: <DAC3FCB50E31C54987CD10797DA511BA065CA520@WIN-MSG-10.wingroup.windeploy.ntdev.microsoft.com>
Thread-Topic: Crypto tokens in addresses
Thread-Index: AcO1oaTESMQeaHKVT5aD1YoOxmxOowAVNsZA
From: Christian Huitema <huitema@windows.microsoft.com>
To: Iljitsch van Beijnum <iljitsch@muada.com>
Cc: ietf@ietf.org
X-OriginalArrivalTime: 28 Nov 2003 21:40:09.0585 (UTC) FILETIME=[323C8610:01C3B5F8]
Content-Transfer-Encoding: quoted-printable
Sender: owner-ietf@ietf.org
Precedence: bulk
Content-Transfer-Encoding: quoted-printable

> In the multi6 (multihoming in IPv6) working group, as one of many
> proposals, we've been looking at putting a 64 bit host identifier in
> the bottom 64 bits of an IPv6 address. If such a host identifier is
> crypto-based (ie, a hash of a public key) then it is possible to
> authenticate a host at any time regardless of where the host connects
> to the network at that particular time and without the need for a PKI
> or prior communication.

There is a very advanced proposal to do just that in the SEND working
group. You should check the drafts, and in particular the definition of
"Cryptographically Generated Addresses (CGA)":

	http://www.ietf.org/internet-drafts/draft-ietf-send-cga-02.txt

The purpose of SEND is "secure neighbor discovery", i.e. preventing such
things as ARP spoofing. 

-- Christian Huitema

v2.23.0 | Report a Bug | By Email